hi, Whats the 'robust' way to make sure email to a specific destination is only accepted if it came over the localhost:25 or /usr/sbin/sendmail route ? anything else should get a 5xx error. Emails to other destinations should remain unaffected. Using postfix/c4. Had a look around, and header_checks might be one way to go. -- Karanbir Singh : karan.org : 2522219 at icq
Karanbir Singh wrote:> hi, > > Whats the 'robust' way to make sure email to a specific destination is > only accepted if it came over the localhost:25 or /usr/sbin/sendmail > route ? anything else should get a 5xx error. Emails to other > destinations should remain unaffected. > > Using postfix/c4. Had a look around, and header_checks might be one way > to go. >The easiest way is probably to edit master.cf and make smtpd only listen on localhost:25. So instead of # smtp inet n - n - - smtpd Use 127.0.0.1:smtp inet n - n - - smtpd Otherwise us an access table. Glenn
> hi, > > Whats the 'robust' way to make sure email to a specific destination is > only accepted if it came over the localhost:25 or /usr/sbin/sendmail > route ? anything else should get a 5xx error. Emails to other > destinations should remain unaffected. >I guess you should need to configure two incoming variant in master.cf, so you have one smtpd listening for localhost and one on the real ip. For the one on the real ip you just set a recipient restriction that disallows your specific destination (directly in master.cf itself). I didn't test, but it should work. Regards, Andreas -- Solvention Egermannstr. 6-8 53359 Rheinbach Tel: +49 2226 158179-0 Fax: +49 2226 158179-9 solvention.de mailto:info at solvention.de -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 3509 bytes Desc: S/MIME Cryptographic Signature URL: <lists.centos.org/pipermail/centos/attachments/20090729/a35f5ad3/attachment-0003.bin>